Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Search in Firefox hijacked and browsers are all slow.


  • Please log in to reply

#1
justred

justred

    Member

  • Member
  • PipPip
  • 14 posts
Hi

Appears I have some sort of software hijacking my browser's search.

I have read some of the threads which appear to have the same problems but haven't had success.

When I performs a search in Firefox and and Chrome is getting redirected to search-results.com and sometimes searchqu.com

Default search engine is set to Google.

Here is the OTL reports and the extras file.

Help will be appreciated! This has me really worried.

OTL logfile created on: 2/11/2011 2:23:54 PM - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Software
Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000C09 | Country: Australia | Language: ENA | Date Format: d/MM/yyyy

3.25 Gb Total Physical Memory | 1.56 Gb Available Physical Memory | 48.16% Memory free
6.49 Gb Paging File | 4.66 Gb Available in Paging File | 71.80% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 465.48 Gb Total Space | 326.42 Gb Free Space | 70.13% Space Free | Partition Type: NTFS
Drive H: | 60.73 Mb Total Space | 60.73 Mb Free Space | 100.00% Space Free | Partition Type: FAT

Computer Name: | User Name: | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/11/02 14:23:43 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Software\OTL.exe
PRC - [2011/10/01 14:45:57 | 000,107,000 | ---- | M] (Siber Systems) -- C:\Program Files\Siber Systems\AI RoboForm\robotaskbaricon.exe
PRC - [2011/10/01 14:12:05 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011/09/20 21:49:09 | 000,544,768 | ---- | M] (Flogs B.V.) -- C:\Program Files\Flogs\FlogsNotify.exe
PRC - [2011/08/31 17:00:48 | 000,366,152 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2011/05/21 07:01:00 | 002,214,504 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2011/05/21 07:01:00 | 000,839,272 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
PRC - [2011/05/21 07:01:00 | 000,373,864 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
PRC - [2011/04/19 15:28:26 | 006,606,232 | ---- | M] (Telstra) -- C:\Program Files\Telstra\Mobile Broadband Manager\TelstraUCM.exe
PRC - [2011/02/25 16:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2011/02/18 12:47:12 | 000,079,192 | ---- | M] (Research In Motion Limited) -- C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
PRC - [2011/01/08 15:46:06 | 000,668,472 | ---- | M] (Systweak Inc., (www.systweak.com)) -- C:\Program Files\Disk Speedup\DSUDefragSrv.exe
PRC - [2010/12/17 10:33:10 | 000,439,632 | ---- | M] (Trend Micro Inc.) -- C:\Program Files\Trend Micro\RUBotted\RUBotSrv.exe
PRC - [2010/12/17 10:33:06 | 001,103,184 | ---- | M] (Trend Micro Inc.) -- C:\Program Files\Trend Micro\RUBotted\RUBottedGUI.exe
PRC - [2010/11/20 23:17:47 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2010/09/02 18:39:44 | 000,230,768 | ---- | M] (Sierra Wireless, Inc.) -- C:\Program Files\Sierra Wireless Inc\Common\SwiCardDetect.exe
PRC - [2010/05/19 07:41:50 | 001,311,312 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPointP\SetPoint.exe
PRC - [2010/05/19 07:40:30 | 000,053,328 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPointP\LBTWiz.exe
PRC - [2010/05/06 20:32:28 | 000,112,208 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
PRC - [2010/05/06 20:29:12 | 000,293,456 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.exe
PRC - [2010/03/24 21:31:50 | 000,810,120 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2010/03/24 21:31:00 | 002,145,000 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
PRC - [2010/03/24 16:42:10 | 000,599,328 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\PMB\PMBVolumeWatcher.exe
PRC - [2009/10/24 04:18:54 | 000,360,224 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe
PRC - [2009/10/21 15:12:50 | 000,106,496 | ---- | M] (NEC Electronics Corporation) -- C:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
PRC - [2009/10/02 14:26:12 | 000,013,336 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2009/10/02 14:26:10 | 000,284,696 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
PRC - [2009/06/04 18:41:22 | 000,451,904 | ---- | M] () -- C:\Program Files\Flip Video\FlipShare\FlipShareService.exe
PRC - [2009/06/03 21:59:02 | 000,103,720 | ---- | M] (CyberLink) -- C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe
PRC - [2009/04/16 00:52:06 | 000,091,432 | ---- | M] (CyberLink Corp.) -- C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe
PRC - [2007/01/12 14:52:12 | 000,435,696 | ---- | M] (Dell) -- C:\Program Files\Dell AIO Printer 946\DLCImon.exe
PRC - [2006/12/08 01:17:44 | 000,537,480 | ---- | M] ( ) -- C:\Windows\System32\dlcicoms.exe


========== Modules (No Company Name) ==========

MOD - [2011/10/13 03:23:55 | 003,347,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\d7a64c28cf0c90e6c48af4f7d6f9ed41\WindowsBase.ni.dll
MOD - [2011/10/13 03:23:50 | 012,433,408 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\6e592e424a204aafeadbe22b6b31b9db\System.Windows.Forms.ni.dll
MOD - [2011/10/13 03:23:40 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\b2622080e047040fa044dd21a04ff10d\System.Runtime.Remoting.ni.dll
MOD - [2011/10/13 03:23:30 | 001,587,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\3b2cfd85528a27eb71dc41d8067359a1\System.Drawing.ni.dll
MOD - [2011/10/13 03:23:28 | 005,453,312 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\130ad4d9719e566ca933ac7158a04203\System.Xml.ni.dll
MOD - [2011/10/13 03:23:25 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\2d5bcbeb9475ef62189f605bcca1cec6\System.Configuration.ni.dll
MOD - [2011/10/13 03:23:22 | 007,963,648 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\abab08afa60a6f06bdde0fcc9649c379\System.ni.dll
MOD - [2011/10/13 03:23:18 | 011,490,304 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\a1a82db68b3badc7c27ea1f6579d22c5\mscorlib.ni.dll
MOD - [2011/10/01 14:12:05 | 001,833,944 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2011/08/29 21:03:52 | 006,277,280 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32.dll
MOD - [2011/06/24 23:56:36 | 000,087,328 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011/06/24 23:56:14 | 001,241,888 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2009/06/03 21:59:14 | 000,013,096 | ---- | M] () -- C:\Program Files\CyberLink\Power2Go\CLMLSvcPS.dll
MOD - [2009/06/03 21:59:02 | 000,619,816 | ---- | M] () -- C:\Program Files\CyberLink\Power2Go\CLMediaLibrary.dll
MOD - [2006/09/06 05:26:48 | 000,069,632 | ---- | M] () -- C:\Program Files\Dell AIO Printer 946\DLCIcfg.dll
MOD - [2005/12/20 14:26:00 | 000,118,784 | ---- | M] () -- C:\Program Files\Dell AIO Printer 946\dlcidrec.dll


========== Win32 Services (SafeList) ==========

SRV - [2011/08/31 17:00:48 | 000,366,152 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011/05/21 07:01:00 | 002,214,504 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011/01/08 15:46:06 | 000,668,472 | ---- | M] (Systweak Inc., (www.systweak.com)) [Auto | Running] -- C:\Program Files\Disk Speedup\DSUDefragSrv.exe -- (DSUDiskOptimizer)
SRV - [2010/12/17 10:33:10 | 000,439,632 | ---- | M] (Trend Micro Inc.) [Auto | Running] -- C:\Program Files\Trend Micro\RUBotted\RUBotSrv.exe -- (RUBotSrv)
SRV - [2010/09/02 18:39:44 | 000,230,768 | ---- | M] (Sierra Wireless, Inc.) [Auto | Running] -- C:\Program Files\Sierra Wireless Inc\Common\SwiCardDetect.exe -- (SwiCardDetectSvc)
SRV - [2010/06/16 11:53:03 | 001,343,400 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)
SRV - [2010/05/06 20:29:12 | 000,293,456 | ---- | M] (Logitech, Inc.) [Auto | Running] -- C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV - [2010/03/24 21:39:48 | 000,033,560 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV - [2010/03/24 21:31:50 | 000,810,120 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
SRV - [2009/10/24 04:18:54 | 000,360,224 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe -- (PMBDeviceInfoProvider)
SRV - [2009/10/21 05:19:48 | 000,117,264 | ---- | M] (CACE Technologies, Inc.) [On_Demand | Stopped] -- C:\Program Files\WinPcap\rpcapd.exe -- (rpcapd) Remote Packet Capture Protocol v.0 (experimental)
SRV - [2009/10/02 14:26:12 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc) Intel®
SRV - [2009/07/14 12:16:15 | 000,016,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\StorSvc.dll -- (StorSvc)
SRV - [2009/07/14 12:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/14 12:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009/07/14 12:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009/06/04 18:41:22 | 000,451,904 | ---- | M] () [Auto | Running] -- C:\Program Files\Flip Video\FlipShare\FlipShareService.exe -- (FlipShare Service)
SRV - [2006/12/08 01:17:44 | 000,537,480 | ---- | M] ( ) [Auto | Running] -- C:\Windows\System32\dlcicoms.exe -- (dlci_device)


========== Driver Services (SafeList) ==========

DRV - [2011/08/31 17:00:50 | 000,022,216 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2011/05/21 07:01:00 | 010,589,800 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2010/11/20 23:30:15 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\vmbus.sys -- (vmbus)
DRV - [2010/11/20 23:30:15 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\vmstorfl.sys -- (storflt)
DRV - [2010/11/20 23:30:15 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\storvsc.sys -- (storvsc)
DRV - [2010/11/20 21:24:41 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010/11/20 20:59:44 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010/11/20 20:14:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\VMBusHID.sys -- (VMBusHID)
DRV - [2010/11/20 20:14:41 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\vms3cap.sys -- (s3cap)
DRV - [2010/07/16 12:04:42 | 000,114,688 | R--- | M] (ZTE Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ZTEusbnet.sys -- (ZTEusbnet)
DRV - [2010/07/16 12:04:42 | 000,105,856 | R--- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ZTEusbser6k.sys -- (ZTEusbser6k)
DRV - [2010/07/16 12:04:42 | 000,105,856 | R--- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ZTEusbnmea.sys -- (ZTEusbnmea)
DRV - [2010/07/16 12:04:42 | 000,105,856 | R--- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ZTEusbmdm6k.sys -- (ZTEusbmdm6k)
DRV - [2010/07/16 12:04:42 | 000,007,168 | R--- | M] (ZTE Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\massfilter.sys -- (massfilter)
DRV - [2010/06/16 11:07:29 | 000,009,856 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\pfc.sys -- (pfc)
DRV - [2010/03/24 21:33:56 | 000,096,896 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\epfwwfpr.sys -- (epfwwfpr)
DRV - [2010/03/24 21:31:06 | 000,114,984 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\System32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2010/03/24 21:23:54 | 000,133,512 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\Windows\System32\drivers\eamonm.sys -- (eamonm)
DRV - [2010/03/18 20:02:08 | 000,037,328 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LMouFilt.Sys -- (LMouFilt)
DRV - [2010/03/18 20:01:52 | 000,038,864 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LHidFilt.Sys -- (LHidFilt)
DRV - [2010/03/01 11:35:10 | 000,018,472 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\AppleCharger.sys -- (AppleCharger)
DRV - [2010/01/29 01:25:03 | 000,068,200 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvhda32v.sys -- (NVHDA)
DRV - [2009/10/27 02:19:02 | 000,136,704 | ---- | M] (NEC Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nusb3xhc.sys -- (nusb3xhc)
DRV - [2009/10/27 02:19:00 | 000,058,240 | ---- | M] (NEC Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nusb3hub.sys -- (nusb3hub)
DRV - [2009/10/21 05:19:44 | 000,050,704 | ---- | M] (CACE Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\npf.sys -- (NPF)
DRV - [2009/09/09 08:50:46 | 000,027,536 | ---- | M] (Broadcom Corporation.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\frmupgr.sys -- (DFUBTUSB)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========


IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://microworkers.com/ [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.gamblingk...e-streaming.asp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://ninemsn.com.au/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-AU
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = E2 C6 6A 4A 32 49 CC 01 [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "iLivid Web Search"
FF - prefs.js..browser.search.defaulturl: "http://www.bing.com/...TDF&PC=WLEM&q="
FF - prefs.js..browser.search.order.1: "iLivid Web Search"
FF - prefs.js..browser.search.selectedEngine: "iLivid Web Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "ted.com"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: [email protected]:2.1.0.19
FF - prefs.js..extensions.enabledItems: [email protected]:2.01
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..extensions.enabledItems: {EB132DB0-A4CA-11DF-9732-0E29E0D72085}:1.3
FF - prefs.js..extensions.enabledItems: {22119944-ED35-4ab1-910B-E619EA06A115}:7.4.1
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26
FF - prefs.js..extensions.enabledItems: {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}:5.3.0.7550
FF - prefs.js..keyword.URL: "http://www.searchqu....id=406&sr=0&q="
FF - prefs.js..network.proxy.type: 0

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.5: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@RIM.com/WebSLLauncher,version=1.0: C:\Program Files\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll ()
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetleCorePlugin,version=0.9.18: C:\Program Files\Veetle\plugins\npVeetle.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\@veetle.com/veetlePlayerPlugin,version=0.9.18: C:\Program Files\Veetle\Player\npvlc.dll (Veetle Inc)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{EB132DB0-A4CA-11DF-9732-0E29E0D72085}: C:\Program Files\Object\facetheme
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/10/01 14:12:05 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/11/02 12:21:11 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\[email protected]: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2010/06/16 11:48:00 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{EB132DB0-A4CA-11DF-9732-0E29E0D72085}: C:\Program Files\Object\facetheme
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{22119944-ED35-4ab1-910B-E619EA06A115}: C:\Program Files\Siber Systems\AI RoboForm\Firefox [2011/10/01 14:46:21 | 000,000,000 | ---D | M]

[2011/10/30 20:39:44 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Daniel\AppData\Roaming\mozilla\Extensions
[2010/07/21 22:04:37 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Daniel\AppData\Roaming\mozilla\Extensions\[email protected]
[2011/10/30 11:25:14 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Daniel\AppData\Roaming\mozilla\Firefox\Profiles\fdbwh61r.default\extensions
[2010/06/17 00:40:36 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Daniel\AppData\Roaming\mozilla\Firefox\Profiles\fdbwh61r.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011/06/08 17:51:06 | 000,000,000 | ---D | M] (Google Toolbar for Firefox) -- C:\Users\Daniel\AppData\Roaming\mozilla\Firefox\Profiles\fdbwh61r.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}
[2010/10/06 14:39:19 | 000,000,000 | ---D | M] (Flash AX Control) -- C:\Users\Daniel\AppData\Roaming\mozilla\Firefox\Profiles\fdbwh61r.default\extensions\[email protected]
[2010/10/30 22:34:51 | 000,001,832 | ---- | M] () -- C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\fdbwh61r.default\searchplugins\bing.xml
[2011/10/30 00:19:52 | 000,002,516 | ---- | M] () -- C:\Users\Daniel\AppData\Roaming\Mozilla\Firefox\Profiles\fdbwh61r.default\searchplugins\SearchResults.xml
[2011/10/30 20:39:44 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/10/28 17:22:35 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2011/08/23 00:22:39 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
[2010/07/15 09:48:25 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2011/01/15 11:27:14 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2011/03/18 16:03:56 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2011/08/10 09:17:55 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
() (No name found) -- C:\USERS\DANIEL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\FDBWH61R.DEFAULT\EXTENSIONS\{AE93811A-5C9A-4D34-8462-F7B864FC4696}.XPI
() (No name found) -- C:\USERS\DANIEL\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\FDBWH61R.DEFAULT\EXTENSIONS\[email protected]
[2011/10/01 14:12:05 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011/05/04 05:52:23 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2011/10/01 14:12:04 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2011/10/30 00:19:52 | 000,002,516 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\SearchResults.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\15.0.874.106\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: Java Deployment Toolkit 6.0.260.3 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java™ Platform SE 6 U26 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
CHR - plugin: Microsoft Office 2003 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\NPOFFICE.DLL
CHR - plugin: Microsoft Office Live Plug-in for Firefox (Enabled) = C:\Program Files\Microsoft\Office Live\npOLW.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\15.0.874.106\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\15.0.874.106\pdf.dll
CHR - plugin: RoboForm Plugin for Google Chrome/Opera/etc. (Enabled) = C:\Program Files\Siber Systems\AI RoboForm\Chrome\plugin/rf-np-plugin.dll
CHR - plugin: RIM Handheld Application Loader (Enabled) = C:\Program Files\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Picasa (Enabled) = C:\Program Files\Google\Picasa3\npPicasa3.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll
CHR - plugin: Veetle TV Player (Enabled) = C:\Program Files\Veetle\Player\npvlc.dll
CHR - plugin: Veetle TV Core (Enabled) = C:\Program Files\Veetle\plugins\npVeetle.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: Mozbar = C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\eakacpaijcpapndcfffdgphdiccmpknp\2.0.1_0\
CHR - Extension: Picasa Extension (by Google) = C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\lhhlohbbihddnfcehbijmlnpkafmmkfp\0.1_0\
CHR - Extension: Skype Click to Call = C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.6.0.8442_0\
CHR - Extension: PageRank = C:\Users\Daniel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pneoplpmnpjoioldpodoljacigkahohc\2.0_0\

O1 HOSTS File: ([2009/06/11 08:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (MediaBar) - {28387537-e3f9-4ed7-860c-11e69af4a8a0} - C:\PROGRA~1\IMESHA~1\MediaBar\Datamngr\ToolBar\imeshdtxmltbpi.dll File not found
O2 - BHO: (Reg Error: Value error.) - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
O2 - BHO: (no name) - {99079a25-328f-4bd4-be04-00955acaa0a7} - No CLSID value found.
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O3 - HKLM\..\Toolbar: (MediaBar) - {28387537-e3f9-4ed7-860c-11e69af4a8a0} - C:\PROGRA~1\IMESHA~1\MediaBar\Datamngr\ToolBar\imeshdtxmltbpi.dll File not found
O3 - HKLM\..\Toolbar: (&RoboForm) - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
O3 - HKLM\..\Toolbar: (no name) - {99079a25-328f-4bd4-be04-00955acaa0a7} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - 10 - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (&RoboForm) - {724D43A0-0D85-11D4-9908-00400523E39A} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [BigPondWirelessBroadbandCM] C:\Program Files\Telstra\Mobile Broadband Manager\TelstraUCM.exe (Telstra)
O4 - HKLM..\Run: [Bluetooth Connection Assistant] LBTWIZ.EXE -silent File not found
O4 - HKLM..\Run: [CLMLServer] C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe (CyberLink)
O4 - HKLM..\Run: [DLCICATS] C:\Windows\System32\spool\DRIVERS\W32X86\3\DLCItime.DLL ()
O4 - HKLM..\Run: [dlcimon.exe] C:\Program Files\Dell AIO Printer 946\dlcimon.exe (Dell)
O4 - HKLM..\Run: [DNS7reminder] C:\Program Files\Nuance\NaturallySpeaking10\Ereg\Ereg.exe (Nuance Communications, Inc.)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [NUSB3MON] C:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (NEC Electronics Corporation)
O4 - HKLM..\Run: [PDVD8LanguageShortcut] C:\Program Files\CyberLink\PowerDVD8\Language\Language.exe (CyberLink Corp.)
O4 - HKLM..\Run: [PMBVolumeWatcher] C:\Program Files\Sony\PMB\PMBVolumeWatcher.exe (Sony Corporation)
O4 - HKLM..\Run: [RemoteControl8] C:\Program Files\CyberLink\PowerDVD8\PDVD8Serv.exe (CyberLink Corp.)
O4 - HKLM..\Run: [RIMBBLaunchAgent.exe] C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe (Research In Motion Limited)
O4 - HKLM..\Run: [Trend Micro RUBotted V2.0 Beta] C:\Program Files\Trend Micro\RUBotted\RUBottedGUI.exe (Trend Micro Inc.)
O4 - HKLM..\Run: [UpdateP2GoShortCut] C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\Run: [UpdatePSTShortCut] C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKCU..\Run: [Flogs.Notifier] C:\Program Files\Flogs\FlogsNotify.exe (Flogs B.V.)
O4 - HKCU..\Run: [RoboForm] C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe (Siber Systems)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Customize Menu - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html ()
O8 - Extra context menu item: Fill Forms - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html ()
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll (Google Inc.)
O8 - Extra context menu item: RoboForm Toolbar - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html ()
O8 - Extra context menu item: Save Forms - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html ()
O9 - Extra Button: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html ()
O9 - Extra 'Tools' menuitem : Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html ()
O9 - Extra Button: Save - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html ()
O9 - Extra 'Tools' menuitem : Save Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html ()
O9 - Extra Button: RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html ()
O9 - Extra 'Tools' menuitem : RoboForm Toolbar - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html ()
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000009 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {C1FDEE68-98D5-4F42-A4DD-D0BECF5077EB} http://tools.ebayimg...l_v1-0-31-0.cab (EPUImageControl Class)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: {F7EDBBEA-1AD2-4EBF-AA07-D453CC29EE65} https://plugins.valu...ashax/iefax.cab (Flash Casino Helper Control)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{079BC0A3-6CD4-4DF1-9FF2-F465E8F0F486}: DhcpNameServer = 10.4.85.135 10.4.176.231
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{30DF8D74-1D9F-4D78-8733-D14368BEE8AE}: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) -C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll) - c:\Program Files\Common Files\LogiShrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/11 08:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{37ae53d6-6c3b-11e0-800b-6cf049e48498}\Shell - "" = AutoRun
O33 - MountPoints2\{37ae53d6-6c3b-11e0-800b-6cf049e48498}\Shell\AutoRun\command - "" = G:\laucher.exe
O33 - MountPoints2\{51c3fee2-3468-11e0-84c2-6cf049e48498}\Shell - "" = AutoRun
O33 - MountPoints2\{51c3fee2-3468-11e0-84c2-6cf049e48498}\Shell\AutoRun\command - "" = G:\QsSetup.exe
O33 - MountPoints2\{6de7a159-c8c4-11e0-9c38-6cf049e48498}\Shell - "" = AutoRun
O33 - MountPoints2\{6de7a159-c8c4-11e0-9c38-6cf049e48498}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{6de7a16a-c8c4-11e0-9c38-6cf049e48498}\Shell - "" = AutoRun
O33 - MountPoints2\{6de7a16a-c8c4-11e0-9c38-6cf049e48498}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{6de7a4d7-c8c4-11e0-9c38-6cf049e48498}\Shell - "" = AutoRun
O33 - MountPoints2\{6de7a4d7-c8c4-11e0-9c38-6cf049e48498}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{6de7a4f2-c8c4-11e0-9c38-6cf049e48498}\Shell - "" = AutoRun
O33 - MountPoints2\{6de7a4f2-c8c4-11e0-9c38-6cf049e48498}\Shell\AutoRun\command - "" = H:\AutoRun.exe
O33 - MountPoints2\{97a7de2d-6dd3-11df-99ec-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{97a7de2d-6dd3-11df-99ec-806e6f6e6963}\Shell\AutoRun\command - "" = D:\AutoRun\AutoRun.exe
O33 - MountPoints2\G\Shell - "" = AutoRun
O33 - MountPoints2\G\Shell\AutoRun\command - "" = G:\laucher.exe
O33 - MountPoints2\H\Shell - "" = AutoRun
O33 - MountPoints2\H\Shell\AutoRun\command - "" = H:\AutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (MACHINE BootExecut)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/11/02 09:39:53 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{EDF5263A-03F4-42B7-B826-885FAB70D5E5}
[2011/11/02 09:39:41 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{A4D8122D-0436-4962-B0BE-EFCC86BD74FA}
[2011/11/01 20:23:03 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{17A357B1-1BC9-46B6-93BC-4B15B22E6E33}
[2011/11/01 20:22:52 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{CF859B26-6327-4DA9-8F38-39199980B432}
[2011/11/01 08:22:39 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{7BB5DDA4-334B-420E-BE96-4859B33E2545}
[2011/11/01 08:22:27 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{F53FDFFC-AEA8-4088-ACE0-9A6E4D293E2F}
[2011/10/31 20:22:15 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{7F37FD7B-1B1B-4426-9721-9CC7A6CE1378}
[2011/10/31 20:22:03 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{C18970C5-B5E1-497F-A484-CC4097995054}
[2011/10/31 08:21:51 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{135E7CF4-30FA-4281-8F8E-58C20FE70F6E}
[2011/10/31 08:21:39 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{972FF4D3-DF56-4D48-9E7E-C35782337F34}
[2011/10/30 20:59:08 | 000,000,000 | ---D | C] -- C:\ProgramData\boost_interprocess
[2011/10/30 20:21:14 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{ED7168A9-34A2-4A6B-B01D-A00B27E785C3}
[2011/10/30 20:21:03 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{35F6EC92-91BF-4890-8ADD-D65B940A1D1C}
[2011/10/30 08:20:51 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{3FB62C98-5C5A-4A38-B540-B48A7EE295E0}
[2011/10/30 08:20:39 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{C4ED3FB4-C21C-4324-93A1-FD494CDB3533}
[2011/10/30 00:19:48 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Roaming\MusicNet
[2011/10/30 00:09:52 | 000,000,000 | ---D | C] -- C:\Program Files\Windows iLivid Toolbar
[2011/10/29 20:20:13 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{5C4104DE-8A01-446E-8662-2C812C1E8B02}
[2011/10/29 20:20:00 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{C2852C13-CFDD-4E00-BB34-8EE17C0D8914}
[2011/10/29 17:03:53 | 000,000,000 | ---D | C] -- C:\Program Files\Buzzluck Casino
[2011/10/29 08:19:35 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{D93DB053-5CB0-4C85-9818-190AFEDDBD75}
[2011/10/29 08:19:24 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{F4FAA0D3-28DB-469C-B34D-A4E66D803F45}
[2011/10/28 20:19:11 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{FEF2FC9E-3835-42D5-87BD-2F88295F29A6}
[2011/10/28 20:19:00 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{1E852B34-847D-4EF8-9146-5D0C4E3FC9A8}
[2011/10/28 17:22:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2011/10/28 08:18:34 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{E619B937-BFDA-4B0D-A237-913BB9C71A14}
[2011/10/28 08:18:23 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{0137F6FA-3179-4F75-B51E-A1C215C7484F}
[2011/10/27 20:18:09 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{370F1CB8-22E6-4547-818B-370229537862}
[2011/10/27 20:17:58 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{DC593251-A7FD-4359-84B4-B726A3A853BE}
[2011/10/27 08:17:45 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{44E6CF69-F9E2-491E-BB0D-09ABB3A0B6E8}
[2011/10/27 08:17:33 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{57F7C033-A6DD-4835-B0E6-3AC5F66777FD}
[2011/10/26 20:17:21 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{B2C876C4-7189-49DF-A63C-F44BD6C9CBAF}
[2011/10/26 20:17:10 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{FD93019A-3073-4BA8-B632-17855E255C35}
[2011/10/26 08:16:45 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{BAC0C140-4F49-40C1-81CC-4BD73DC4F59B}
[2011/10/26 08:16:34 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{488FF935-AA22-42A5-ACF9-EBCBE3A43F51}
[2011/10/25 20:16:21 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{C4503CAC-9515-4F93-B035-2459C0393613}
[2011/10/25 20:16:10 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{0268CA83-4FDF-4986-AFA4-6F99D8F7D7EB}
[2011/10/25 08:15:57 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{59667D39-6ADC-43E5-9FEC-0A1D789D13B1}
[2011/10/25 08:15:46 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{A23680F1-D54A-4D0D-9465-C02C266E67A9}
[2011/10/24 20:15:33 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{EE756D75-8278-45CF-BC4D-7D8D7056D0F0}
[2011/10/24 20:15:22 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{AC2E7669-AD0E-422D-A598-94668E351E91}
[2011/10/24 08:15:09 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{3A01CB31-8645-453F-9EDD-18EC6C8AE06E}
[2011/10/24 08:14:58 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{DD7A9CC1-BBF7-4A4D-87E1-435F629A7036}
[2011/10/23 20:14:45 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{93999F13-E0C5-4178-B098-0F5DC9652C16}
[2011/10/23 20:14:34 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{72B21AF8-0AF6-4B01-90FE-690962EA11CC}
[2011/10/23 08:14:21 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{DB56D405-22B2-4519-9032-5124BA4CECAF}
[2011/10/23 08:14:10 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{6DB2F466-403D-44B7-A9AE-9BCB1FBC6AA1}
[2011/10/22 20:13:57 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{1A8C0622-6EDA-4A80-AE9F-001FDF25F520}
[2011/10/22 20:13:46 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{B47C6FC5-41B0-49D3-B96D-D75DABC7B781}
[2011/10/22 08:13:32 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{69432A82-291D-4AA9-8831-7981150892E0}
[2011/10/22 08:13:21 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{4AB58A60-519C-4FE8-BC93-92A3C429A598}
[2011/10/21 20:13:07 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{04A6A778-ABD3-42E6-8386-1614917A1DA1}
[2011/10/21 20:12:56 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{CA18CB85-97DC-437D-9750-040A6A267574}
[2011/10/21 08:12:43 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{87088217-91A9-46AD-8A8B-AFA1976993E2}
[2011/10/21 08:12:32 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{C43CFFE7-8010-4F47-A734-228FA29A7792}
[2011/10/20 20:12:20 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{A5BD4C76-0B55-417A-BFA7-4FACC2721DBD}
[2011/10/20 20:12:09 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{4D84C997-BFEA-46E2-992A-78E2B2208B12}
[2011/10/20 08:11:56 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{5F4603AE-EB51-44D4-B26F-077F5B75A6C4}
[2011/10/20 08:11:45 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{5EB5A7AB-40A3-4E8A-911A-1D823FACD361}
[2011/10/19 20:11:32 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{9D14D049-42DC-46C6-AE9A-B7241E361753}
[2011/10/19 20:11:20 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{135DE83F-7A33-4D8F-9EB2-FFA21C20BCD0}
[2011/10/19 08:11:07 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{84E5D465-5A90-44F6-8939-F0134BAF8E40}
[2011/10/19 08:10:56 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{F9E877D8-7574-4784-B4DA-407E17A03455}
[2011/10/18 20:10:44 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{4D15630D-4AEE-4F1F-B05C-067DB3F80648}
[2011/10/18 20:10:32 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{384F378D-C658-4AE6-8FE1-A3105B88E5F6}
[2011/10/18 08:10:20 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{F37A37BD-4151-4F4F-803D-32CF399E2C0E}
[2011/10/18 08:10:08 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{C603FDE1-9751-4E56-A250-4F111A551C91}
[2011/10/17 20:09:54 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{D307AC81-B3E6-4829-B513-FDBB87939044}
[2011/10/17 20:09:43 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{9F659396-BB53-4330-BFB0-0DB83AD6A672}
[2011/10/17 13:57:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2011/10/17 08:09:30 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{41FF4D33-E9A8-4A64-8E31-6556505AE09B}
[2011/10/17 08:09:19 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{33AF4387-2FD2-4B02-922F-C2F0A74B7179}
[2011/10/16 20:09:06 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{A93476C1-F89D-403C-9AB2-3A804B5EC0E0}
[2011/10/16 20:08:55 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{542F0D2B-A01D-4D15-9403-628E931C4CCD}
[2011/10/16 08:08:42 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{C95BFFC8-6FB0-4B27-9097-861AD1A4CC20}
[2011/10/16 08:08:31 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{9D522EFB-5863-4D63-8FE0-24AF18D55C32}
[2011/10/15 20:08:18 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{7055B9F2-F33C-469D-A813-61635F53669D}
[2011/10/15 20:08:07 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{F8B66FE2-73C1-4BFC-9629-707F955CE471}
[2011/10/15 08:07:54 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{D381A084-E3DC-4338-8341-9E1D0CBB40EC}
[2011/10/15 08:07:43 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{2D7CE629-DE4B-4E42-AE60-02AB4B00B5A6}
[2011/10/14 20:07:31 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{11AC4F95-FCBF-4B3E-9981-4F94DEF522F3}
[2011/10/14 20:07:19 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{CDBDBE79-2C8F-4D92-9EFB-DE6FCF6A99D1}
[2011/10/14 08:06:54 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{F6ACBEFD-F7B9-40EC-BFA2-D27282EC3121}
[2011/10/14 08:06:43 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{CAEC9D5E-6A31-41E4-808F-B738FD3E0A2E}
[2011/10/13 20:06:30 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{799F04B8-E23C-479F-B377-9F8A6C243C57}
[2011/10/13 20:06:19 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{4298D160-A82F-4F5D-9516-D3CC5109E207}
[2011/10/13 08:06:05 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{185F3434-E194-4CC2-BD17-108920AF0AC9}
[2011/10/13 08:05:54 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{351195D3-8A12-400E-90D7-D225BAB2395C}
[2011/10/12 20:01:02 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{9AD00DB0-5C74-4FD4-B57C-7F2907293C6E}
[2011/10/12 20:00:51 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{A36E1278-4791-41DB-80B0-7661914940F0}
[2011/10/12 08:00:38 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{97D76B2C-B1CC-4816-8A46-2B3AFC8729B1}
[2011/10/12 08:00:27 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{21919D66-14BA-4B63-BC9D-C6077932B7D4}
[2011/10/11 20:00:14 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{1684F714-EA77-4FCF-AEC3-4F301BE9A37B}
[2011/10/11 20:00:03 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{6BA4B8D8-2B7C-43BD-BC32-377C83A6FF72}
[2011/10/11 07:59:37 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{9EE8B02A-371B-45B0-B1EA-D3C7B41377C5}
[2011/10/11 07:59:26 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{DCF8E653-8AAC-4F50-8432-81148AFC6DD1}
[2011/10/10 19:59:13 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{7D61DABC-2A1B-49E4-9141-AD29393AD953}
[2011/10/10 19:59:02 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{AE20AFEF-B4B4-4507-AF17-277AAA52E7BE}
[2011/10/10 07:58:49 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{AB9A6DC6-9101-4F5D-9B08-3FEE390A93B3}
[2011/10/10 07:58:38 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{35358F49-7962-4470-90BD-B54529AD21A5}
[2011/10/09 19:58:25 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{613A8DB4-9F9A-4F6E-9A4C-2FEE406E5FB5}
[2011/10/09 19:58:14 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{227BAB08-77D9-4A93-B5F5-4323F4B108BE}
[2011/10/09 07:58:01 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{88C938C0-988C-4165-A27E-DFD5C35691B4}
[2011/10/09 07:57:49 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{9A038B87-0A0B-4F6F-A169-365E632D7C74}
[2011/10/08 19:57:37 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{EA71D59A-3C6B-4AF9-B9C5-8060FC7E9CAD}
[2011/10/08 19:57:25 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{47FC696A-7604-4051-8B30-FE59BD718B88}
[2011/10/08 07:57:13 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{80C066A1-ABE3-4448-B265-B599EDC7C17D}
[2011/10/08 07:57:02 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{8CF9D698-B399-43CD-86D5-4D2ADCCE9B64}
[2011/10/07 19:56:49 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{935A28C9-4E9A-46CA-BB5B-5F6E7ECA3476}
[2011/10/07 19:56:38 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{90AAC185-75F1-4AB5-8C13-FA283CFC1059}
[2011/10/07 07:56:12 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{F7231169-81B5-40A3-BB42-D655B88B1F73}
[2011/10/07 07:56:01 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{906E8E3E-3B78-41B6-B3C3-7C0A739D743B}
[2011/10/06 19:55:49 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{06D549AF-40AE-476B-ADC2-F72404660B44}
[2011/10/06 19:55:37 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{5F5472B7-19B4-44FC-A0FD-405BE00CFD48}
[2011/10/06 07:55:24 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{2BB1FA19-9518-4E92-94B4-43D34F33FE54}
[2011/10/06 07:55:13 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{A7EF0F92-4A69-4639-BF73-AA2F05C3B004}
[2011/10/05 19:55:00 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{4CB8A7D3-9E5C-4F81-96E5-5157A75768B4}
[2011/10/05 19:54:49 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{578B2B4B-611A-4E6D-A10B-86A72B249FD7}
[2011/10/05 07:54:25 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{BC353ED6-F74E-4A96-BC8D-BA409844F7AF}
[2011/10/05 07:54:14 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{A0C8CD17-CA63-4A9B-B5B8-2752FF74A475}
[2011/10/04 19:54:01 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{4D938853-7B15-4751-9B9E-AFE8330502A7}
[2011/10/04 19:53:50 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{89EFFC88-25BD-4233-99F3-9324C566CF28}
[2011/10/04 07:53:37 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{F5AD89B5-3415-41D4-A8C6-93B2CF5A4003}
[2011/10/04 07:53:26 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{D4036519-6B93-466D-B2C3-091FA8CA9928}
[2011/10/03 19:53:13 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{9C9D20F1-5B00-4B3B-B670-D4DA7592BBF0}
[2011/10/03 19:53:02 | 000,000,000 | ---D | C] -- C:\Users\Daniel\AppData\Local\{C2A481F3-56A5-4921-96A5-E5D0C9761970}
[2010/06/17 15:15:29 | 000,323,584 | ---- | C] ( ) -- C:\Windows\System32\DLCIhcp.dll
[2010/04/27 11:11:53 | 001,224,704 | ---- | C] ( ) -- C:\Windows\System32\dlciserv.dll
[2010/04/27 11:11:53 | 000,991,232 | ---- | C] ( ) -- C:\Windows\System32\dlciusb1.dll
[2010/04/27 11:11:53 | 000,696,320 | ---- | C] ( ) -- C:\Windows\System32\dlcihbn3.dll
[2010/04/27 11:11:53 | 000,684,032 | ---- | C] ( ) -- C:\Windows\System32\dlcicomc.dll
[2010/04/27 11:11:53 | 000,643,072 | ---- | C] ( ) -- C:\Windows\System32\dlcipmui.dll
[2010/04/27 11:11:53 | 000,585,728 | ---- | C] ( ) -- C:\Windows\System32\dlcilmpm.dll
[2010/04/27 11:11:53 | 000,537,480 | ---- | C] ( ) -- C:\Windows\System32\dlcicoms.exe
[2010/04/27 11:11:53 | 000,421,888 | ---- | C] ( ) -- C:\Windows\System32\dlcicomm.dll
[2010/04/27 11:11:53 | 000,413,696 | ---- | C] ( ) -- C:\Windows\System32\dlciinpa.dll
[2010/04/27 11:11:53 | 000,397,312 | ---- | C] ( ) -- C:\Windows\System32\dlciiesc.dll
[2010/04/27 11:11:53 | 000,385,928 | ---- | C] ( ) -- C:\Windows\System32\dlciih.exe
[2010/04/27 11:11:53 | 000,381,832 | ---- | C] ( ) -- C:\Windows\System32\dlcicfg.exe
[2010/04/27 11:11:53 | 000,163,840 | ---- | C] ( ) -- C:\Windows\System32\dlciprox.dll
[2010/04/27 11:11:53 | 000,094,208 | ---- | C] ( ) -- C:\Windows\System32\dlcipplc.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/11/02 14:17:00 | 000,000,886 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/11/02 09:39:20 | 000,000,882 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/11/02 08:10:39 | 000,017,664 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/11/02 08:10:39 | 000,017,664 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/11/02 08:07:33 | 000,628,024 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/11/02 08:07:33 | 000,110,208 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/11/02 08:03:19 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/11/02 08:03:13 | 2613,665,792 | -HS- | M] () -- C:\hiberfil.sys
[2011/11/01 15:02:13 | 000,000,266 | ---- | M] () -- C:\Windows\tasks\RegClean Pro_DEFAULT.job
[2011/10/31 21:47:22 | 005,795,534 | ---- | M] () -- C:\Users\Daniel\Desktop\snowmass.pdf
[2011/10/31 19:49:52 | 000,045,089 | ---- | M] () -- C:\Users\Daniel\Desktop\Capture.JPG
[2011/10/31 19:48:40 | 000,173,390 | ---- | M] () -- C:\Users\Daniel\Desktop\screen1.gif
[2011/10/30 20:44:40 | 000,000,972 | ---- | M] () -- C:\Users\Public\Desktop\RegClean Pro.lnk
[2011/10/29 17:36:58 | 000,426,928 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2011/10/29 11:07:38 | 000,001,055 | ---- | M] () -- C:\Users\Daniel\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk
[2011/10/29 06:17:57 | 000,002,290 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2011/10/28 17:22:29 | 000,002,503 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2011/10/26 19:29:12 | 000,000,274 | ---- | M] () -- C:\Windows\tasks\RegClean Pro_UPDATES.job
[2011/10/26 14:06:08 | 000,369,503 | ---- | M] () -- C:\Users\Daniel\Documents\helitour2.jpg
[2011/10/23 15:34:47 | 000,405,863 | ---- | M] () -- C:\Users\Daniel\Documents\Scan.jpg
[2011/10/19 11:19:09 | 000,218,406 | ---- | M] () -- C:\Users\Daniel\Documents\mogulski 19102011.jpg
[2011/10/17 13:57:42 | 000,001,713 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[2011/10/12 19:13:55 | 000,146,710 | ---- | M] () -- C:\Users\Daniel\Desktop\Linkbait-Brainstorm-Workbook.pdf
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/10/31 21:41:05 | 005,795,534 | ---- | C] () -- C:\Users\Daniel\Desktop\snowmass.pdf
[2011/10/31 19:49:51 | 000,045,089 | ---- | C] () -- C:\Users\Daniel\Desktop\Capture.JPG
[2011/10/31 19:48:05 | 000,173,390 | ---- | C] () -- C:\Users\Daniel\Desktop\screen1.gif
[2011/10/28 17:22:29 | 000,002,503 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2011/10/26 14:06:08 | 000,369,503 | ---- | C] () -- C:\Users\Daniel\Documents\helitour2.jpg
[2011/10/23 15:34:47 | 000,405,863 | ---- | C] () -- C:\Users\Daniel\Documents\Scan.jpg
[2011/10/19 11:19:09 | 000,218,406 | ---- | C] () -- C:\Users\Daniel\Documents\mogulski 19102011.jpg
[2011/10/17 13:57:42 | 000,001,713 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2011/10/12 19:13:50 | 000,146,710 | ---- | C] () -- C:\Users\Daniel\Desktop\Linkbait-Brainstorm-Workbook.pdf
[2011/10/11 08:50:55 | 000,001,055 | ---- | C] () -- C:\Users\Daniel\Application Data\Microsoft\Internet Explorer\Quick Launch\Malwarebytes' Anti-Malware.lnk
[2011/07/07 20:38:54 | 000,002,232 | ---- | C] () -- C:\Windows\System32\ASOROSet.bin
[2011/05/24 11:50:50 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2011/02/09 13:56:34 | 000,000,311 | ---- | C] () -- C:\Windows\pagebreeze.ini
[2011/02/09 13:56:34 | 000,000,044 | ---- | C] () -- C:\Windows\formbreeze.ini
[2011/01/21 07:03:34 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2010/12/11 15:34:28 | 000,123,392 | ---- | C] () -- C:\Windows\System32\UnCasino5.exe
[2010/07/11 16:41:37 | 000,016,896 | ---- | C] () -- C:\Users\Daniel\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/06/25 21:43:48 | 000,001,995 | ---- | C] () -- C:\Users\Daniel\AppData\Roaming\SAS7_000.DAT
[2010/06/17 15:15:29 | 000,274,432 | ---- | C] () -- C:\Windows\System32\DLCIinst.dll
[2010/06/16 13:51:49 | 000,023,052 | ---- | C] () -- C:\Windows\System32\emptyregdb.dat
[2010/06/16 11:03:48 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
[2010/06/02 12:41:31 | 000,018,472 | ---- | C] () -- C:\Windows\System32\drivers\AppleCharger.sys
[2010/06/02 12:38:32 | 000,073,728 | ---- | C] () -- C:\Windows\System32\RtNicProp32.dll
[2010/06/02 12:36:20 | 000,000,010 | ---- | C] () -- C:\Windows\GSetup.ini
[2010/04/27 11:11:53 | 000,040,960 | ---- | C] () -- C:\Windows\System32\dlcivs.dll
[2010/04/27 11:11:52 | 000,434,176 | ---- | C] () -- C:\Windows\System32\dlciutil.dll
[2010/04/27 11:11:52 | 000,344,064 | ---- | C] () -- C:\Windows\System32\dlcicoin.dll
[2010/04/27 11:11:52 | 000,176,128 | ---- | C] () -- C:\Windows\System32\dlciinsb.dll
[2010/04/27 11:11:52 | 000,159,744 | ---- | C] () -- C:\Windows\System32\dlciins.dll
[2010/04/27 11:11:52 | 000,135,168 | ---- | C] () -- C:\Windows\System32\dlcijswr.dll
[2010/04/27 11:11:52 | 000,106,496 | ---- | C] () -- C:\Windows\System32\dlciinsr.dll
[2010/04/27 11:11:52 | 000,086,016 | ---- | C] () -- C:\Windows\System32\dlcicub.dll
[2010/04/27 11:11:52 | 000,073,728 | ---- | C] () -- C:\Windows\System32\dlcicu.dll
[2010/04/27 11:11:52 | 000,036,864 | ---- | C] () -- C:\Windows\System32\dlcicur.dll
[2009/10/21 05:19:30 | 000,053,299 | ---- | C] () -- C:\Windows\System32\pthreadVC.dll
[2009/08/27 18:04:14 | 000,207,400 | R--- | C] () -- C:\Windows\GSetup.exe
[2009/07/14 15:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/14 15:33:53 | 000,426,928 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2009/07/14 13:05:48 | 000,628,024 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2009/07/14 13:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2009/07/14 13:05:48 | 000,110,208 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2009/07/14 13:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2009/07/14 13:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2009/07/14 13:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2009/07/14 10:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/14 10:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009/07/14 10:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009/06/11 08:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2008/02/19 17:33:34 | 000,446,352 | ---- | C] () -- C:\Windows\System32\OpenQuicktimeLib.dll
[2006/09/06 06:26:48 | 000,069,632 | ---- | C] () -- C:\Windows\System32\dlcicfg.dll
[2005/12/02 16:53:06 | 000,061,440 | ---- | C] () -- C:\Windows\System32\dlcicnv4.dll

========== LOP Check ==========

[2010/06/21 16:01:19 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\ACD Systems
[2010/12/25 20:30:54 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\Blackberry Desktop
[2010/06/16 20:51:55 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\GlobalSCAPE
[2010/06/17 10:43:34 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\Leadertech
[2011/10/30 00:19:48 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\MusicNet
[2010/06/25 21:35:08 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\Nuance
[2011/04/07 08:57:59 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\Nvu
[2010/12/10 20:46:05 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\Report Viewer Biz
[2010/12/10 20:46:03 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\Report_Viewer_Limited
[2010/12/25 19:05:07 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\Research In Motion
[2011/09/03 19:47:43 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\RoboForm
[2011/09/01 23:17:01 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\Sierra Wireless
[2011/07/07 20:49:02 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\Systweak
[2011/09/01 23:18:31 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\Telstra
[2011/04/09 22:42:56 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\Transcend
[2010/11/08 10:07:51 | 000,000,000 | ---D | M] -- C:\Users\Daniel\AppData\Roaming\VTExtra
[2011/11/01 15:02:13 | 000,000,266 | ---- | M] () -- C:\Windows\Tasks\RegClean Pro_DEFAULT.job
[2011/10/26 19:29:12 | 000,000,274 | ---- | M] () -- C:\Windows\Tasks\RegClean Pro_UPDATES.job
[2009/07/14 15:53:46 | 000,030,840 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 208 bytes -> C:\ProgramData\Temp:F35A93AD

< End of report >

OTL Extras logfile created on: 2/11/2011 2:23:54 PM - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Software
Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000C09 | Country: Australia | Language: ENA | Date Format: d/MM/yyyy

3.25 Gb Total Physical Memory | 1.56 Gb Available Physical Memory | 48.16% Memory free
6.49 Gb Paging File | 4.66 Gb Available in Paging File | 71.80% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 465.48 Gb Total Space | 326.42 Gb Free Space | 70.13% Space Free | Partition Type: NTFS
Drive H: | 60.73 Mb Total Space | 60.73 Mb Free Space | 100.00% Space Free | Partition Type: FAT

Computer Name: RIAAN-PC | User Name: Daniel | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [ACDBrowse] -- "C:\Program Files\ACD Systems\ACDSee\6.0\ACDSee6.exe" "%1" (ACD Systems Ltd.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{08B857DF-E6F9-4283-853A-4F329CC09A4F}" = ESET NOD32 Antivirus
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0C305FC9-42C8-4FBE-819D-9C72CB356F09}" = Telstra Mobile Broadband Manager
"{0D3F9802-689F-9B6D-8E44-B55971F0CCBB}" = FlipShare
"{11e38883-6ec3-45c5-8287-5c1ff386f072}" = Buzzluck Casino
"{13D324E9-9DB1-478D-944C-28BBE1BB80DC}" = HP Officejet Pro 8500 A910 Help
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = LG Power Tools
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{26A24AE4-039D-4CA4-87B4-2F83216010FF}" = Java™ 6 Update 26
"{29ED20C9-5E15-4969-9279-25BF3727A3DA}" = iTunes
"{2A3FC24C-6EC0-4519-A52B-FDA4EA9B2D24}" = Windows Live Messenger
"{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}" = LG CyberLink PowerDVD
"{2EA870FA-585F-4187-903D-CB9FFD21E2E0}" = DHTML Editing Component
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3D3E663D-4E7E-4577-A560-7ECDDD45548A}" = PVSonyDll
"{3DECD372-76A1-4483-BF10-B547790A3261}" = ON_OFF Charge B10.0301.1
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel® Rapid Storage Technology
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = eReg
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = LG CyberLink Power2Go
"{4640FDE1-B83A-4376-84ED-86F86BEE2D41}" = Driver Detective
"{49471DB8-7F3C-42DB-89C2-AC50FA0C5290}" = Camtasia Studio 7
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A5A427F-BA39-4BF0-9A47-9999FBE60C9F}" = Visual C++ Runtime for Dragon NaturallySpeaking
"{54D4EAF5-4C80-4878-B4AC-5AE454A02E3C}_is1" = Trend Micro RUBotted 2.0 Beta
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{75157F34-02C6-4831-BD66-3BC49E7A8394}" = BlackBerry Desktop Software 6.1
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{787D1A33-A97B-4245-87C0-7174609A540C}" = HP Update
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{869D453C-53E8-4DE0-92EA-F574A22E82AE}" = HP Officejet Pro 8500 A910 Basic Device Software
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver For Windows 7
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0015-0409-0000-0000000FF1CE}_PROHYBRIDR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_PROHYBRIDR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_PROHYBRIDR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}_PROHYBRIDR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}_PROHYBRIDR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_PROHYBRIDR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_PROHYBRIDR_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_PROHYBRIDR_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_PROHYBRIDR_{187308AB-5FA7-4F14-9AB9-D290383A10D9}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_PROHYBRIDR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_PROHYBRIDR_{DE5A002D-8122-4278-A7EE-3121E7EA254E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}_PROHYBRIDR_{2FC4457D-409E-466F-861F-FB0CB796B53E}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{90170409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office FrontPage 2003
"{91120000-0031-0000-0000-0000000FF1CE}" = Microsoft Office Professional Hybrid 2007
"{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{949DBB22-2FB7-4de1-804C-23D495A988D8}" = CuteFTP 8 Home
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95140000-007A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook Connector
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A00B9A50-3090-4CFF-9CDA-82DA0BEDAA21}" = Apple Mobile Device Support
"{A83279FD-CA4B-4206-9535-90974DE76654}" = Apple Application Support
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AA59DDE4-B672-4621-A016-4C248204957A}" = Skype™ 5.5
"{AC76BA86-7AD7-1033-7B44-A94000000001}" = Adobe Reader 9.4.6
"{B194272D-1F92-46DF-99EB-8D5CE91CB4EC}" = Adobe AIR
"{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Control Panel 275.33
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Graphics Driver 275.33
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 1.3.5
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B3FED300-806C-11E0-A0D0-B8AC6F97B88E}" = Google Earth
"{B6A98E5F-D6A7-46FB-9E9D-1F7BF443491C}" = PMB
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{BEE64C14-BEF1-4610-8A68-A16EAA47B882}" = Futuremark SystemInfo
"{C6150D8A-86ED-41D3-87BB-F3BB51B0B77F}" = Windows Live ID Sign-in Assistant
"{C6579A65-9CAE-4B31-8B6B-3306E0630A66}" = Apple Software Update
"{C9E14402-3631-4182-B377-6B0DFB1C0339}" = QuickTime
"{CA6BCA2F-EDEB-408F-850B-31404BE16A61}" = I.R.I.S. OCR
"{CD95F661-A5C4-44F5-A6AA-ECDD91C240BD}" = WinZip 14.5
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D22002ED-EE2A-4CB1-A63D-430E62A2E8D8}" = Google SketchUp 8
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D4C9692E-4EFA-4DA0-8B7F-9439466D9E31}" = Full Tilt Poker
"{D7BF9739-8A68-4335-BBEE-37752AD9E86B}" = NEC Electronics USB 3.0 Host Controller Driver
"{DEA314C4-0929-4250-BC92-98E4C105F28D}" = NVIDIA PhysX
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E3624DFE-B0AB-410A-9BDC-5D1681E5E388}" = HP Officejet Pro 8500 A910 Product Improvement Study
"{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
"{E7712E53-7A7F-46EB-AA13-70D5987D30F2}" = Dragon NaturallySpeaking 10
"{ED3C3067-09FF-40CF-8A1D-D0FE10C810B6}" = The Report Viewer
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}" = Microsoft Office Live Add-in 1.5
"{F8131A35-47FD-27AD-116D-0E79AF5DE5EE}" = Acrobat.com
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel® Control Center
"{FC7E771F-8170-4573-825D-EDB6723C804F}_is1" = Disk Speedup
"{FD88D501-1F0A-4DA4-A13A-6437411EE0C3}" = ACDSee 6.0 Standard
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"3ivx MPEG-4 5.0.3" = 3ivx MPEG-4 5.0.3 (remove only)
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"BlackBerry_Desktop" = BlackBerry Desktop Software 6.1
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"Dell AIO Printer 946" = Dell AIO Printer 946
"FlogsOutlook" = Flogs Outlook plugin
"Google Chrome" = Google Chrome
"InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = LG Power Tools
"InstallShield_{2BF2E31F-B8BB-40A7-B650-98D28E0F7D47}" = LG CyberLink PowerDVD
"InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}" = LG CyberLink Power2Go
"InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B}" = NEC Electronics USB 3.0 Host Controller Driver
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware version 1.51.2.1300
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Mozilla Firefox 7.0.1 (x86 en-US)" = Mozilla Firefox 7.0.1 (x86 en-US)
"NVIDIA Drivers" = NVIDIA Drivers
"PageBreeze Free HTML Editor" = PageBreeze Free HTML Editor
"PartyCasino" = PartyCasino
"Picasa 3" = Picasa 3
"PokerStars" = PokerStars
"PROHYBRIDR" = 2007 Microsoft Office system
"RegClean Pro_is1" = RegClean Pro
"Searchqu 406 MediaBar" = Windows iLivid Toolbar
"seopowersuite" = SEO SpyGlass
"SP6" = Logitech SetPoint 6.1
"Telstra Mobile Broadband Manager" = Telstra Mobile Broadband Manager
"Uniblue RegistryBooster" = Uniblue RegistryBooster
"Veetle TV" = Veetle TV 0.9.18
"WinLiveSuite" = Windows Live Essentials
"WinPcapInst" = WinPcap 4.1.1
"Xenu's Link Sleuth" = Xenu's Link Sleuth

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"AI RoboForm" = RoboForm 7-5-2
"Centrebet Poker.NET" = Centrebet.net
"f031ef6ac137efc5" = Dell Driver Download Manager

========== Last 10 Event Log Errors ==========

Error reading Event Logs: The Event Service is not operating properly or the Event Logs are corrupt!

< End of report >

Edited by justred, 02 November 2011 - 01:56 AM.

  • 0

Advertisements







Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP